58925 – (CVE-2004-0746) VUL-0: opera: bug collection

Bug 58925 (CVE-2004-0746) - VUL-0: opera: bug collection

Summary: VUL-0: opera: bug collection

Status:	RESOLVED FIXED

Alias:	CVE-2004-0746

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	All Linux

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Lukas Tinkl
QA Contact:	Security Team bot

URL:
Whiteboard:	CVE-2004-0746: CVSS v2 Base Score: 7....
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2004-08-18 18:28 UTC by Thomas Biege
Modified:	2021-10-27 07:51 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Biege 2004-08-18 18:28:28 UTC

Hi, 
this bug report should serve a "nikolaus bag" for all the opera bug reports we 
have so far. :)

Comment 1 Thomas Biege 2004-08-18 18:28:28 UTC

<!-- SBZ_reproduce  -->
-

Comment 2 Thomas Biege 2004-08-18 18:43:39 UTC

bug 57279: "phishing attack" 
bug 58526: uses vulnerable qt library 
bug 58923: local file detection 
bug 58008: does opera use a vulnerable version of libpng? 
bug 58269: cross-domain cookie spoofing 
 
something i missed?

Comment 3 Lukas Tinkl 2004-08-18 19:33:58 UTC

I don§'t think so. So how do we proceed? I suggest updating to the current 
Opera version (7.54) in STABLE, you can then review the changes and I'll 
backport if you approve them...

Comment 4 Marcus Meissner 2004-08-18 20:28:59 UTC

Yes please.

Comment 5 Lukas Tinkl 2004-08-18 22:54:54 UTC

Roger, done

Comment 6 Marcus Meissner 2004-08-19 22:16:57 UTC

it had some problems , since we are past the Cryptography Freeze for 9.2. 
 
I think Juergen Weigert and Lukas are working on that. 
 
This also opened the question of changes in crypto software for released 
products... :/

Comment 7 Marcus Meissner 2004-08-24 20:47:43 UTC

We have an ok to increase the version of Opera for released products. 
 
We just need be reasonably sure that the cryptography was not enhanced (as in 
"more bits" and "new algorithms").

Comment 8 Juergen Weigert 2004-08-24 22:39:28 UTC

head of Novell's export review team gives these directions: 

Date: Fri, 20 Aug 2004 09:54:03 -0600 
From: "Lynn Wallace" <llwallace@novell.com> 

Hello, Juergen.  As long as it is a true bug fix (update) and does not 
enhance (upgrade) the existing crypto or provide new crypto we are ok.  
By "enhance," we mean providing a higher bit length or upgrading the 
functionality of the crypto in any way.  So, we have to make sure that 
even if the fix doesn't specifically touch the crypto it doesn't revise 
the software component so that the crypto is available for use other 
than the original intention or allow a boost of the bit length.  Lastly, 
we have to make sure the fix doesn't turn the software into 
crypto-with-a-hole.

Comment 9 Lukas Tinkl 2004-09-06 17:02:14 UTC

One more for the collection...

#43923: Opera local file detection

Comment 10 Thomas Biege 2004-09-07 23:59:08 UTC

When is the opera security updated planned, Lukas. 
 
Do we have a working opera package with all known issues fixed available?

Comment 11 Lukas Tinkl 2004-09-08 16:40:51 UTC

I'm working with "Christian Westgaard" <chrisw@opera.com> on a new build of
Opera, containing also all the security bugfixes.

Comment 12 Lukas Tinkl 2004-09-15 21:42:12 UTC

Submitted updated packages; Thomas pls verify

Comment 13 Thomas Biege 2004-09-16 19:20:23 UTC

submitted patchfino file: 
 
/work/src/done/PATCHINFO/opera.patch.box 
[...] 
Security Update: 
This update resolves various security vulnerabilities in Opera (web-browser). 
List of vulnerabilities resolved: 
   + spoofing of address bar content 
   + usage of vulnerable Qt library (CAN-2004-0691) 
   + remote detection of local files (GM#009-OP) 
   + usage of vulnerable PNG library (CAN-2004-0597, 
     CAN-2004-0598, CAN-2004-0599) 
   + cross domain cookie spoofing (CAN-2004-0746)

Comment 14 Thomas Biege 2004-09-16 19:21:11 UTC

Lukas, 
did you made some minor tests, like loading a web-page, with the new opera?

Comment 15 Thomas Biege 2004-09-16 19:28:49 UTC

hm, was it checked in for stable only?

Comment 16 Lukas Tinkl 2004-09-16 21:42:53 UTC

tests: yes, I performed them, worked fine

backport: unfortunately my disk died a horrible death today, so I didn't :( I'll
have to reinstall my machine completely which will take some time

For the record, you can get updated Opera tarballs here:
https://secure.opera.com/desktop/
Login: SuSE
Passwd: spas

Contact at Opera: christian.westgaard@opera.com

Comment 17 Thomas Biege 2004-09-20 18:19:06 UTC

Lukas, 
hope everything worked well with your reinstall. :) 
 
Please let me know when you finished the backporting of the opera patches for 
older, supported versions.

Comment 18 Lukas Tinkl 2004-09-20 18:20:12 UTC

Unfortunately not yet, I'll get a new disk from SUSE tomorrow.

Comment 19 Thomas Biege 2004-09-29 22:49:32 UTC

packages approved...

Comment 20 Thomas Biege 2009-10-13 19:46:50 UTC

CVE-2004-0746: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)